RBAC Analyst - 7664824Founded in 1996, based in Denver, CO, Softec Solutions is a leading IT staffing solutions and services company that takes the challenge out of finding high-demand technical skill-sets. Softec takes a proactive approach in understanding business challenges and local market analytics, provides customized recruiting solutions, and delivers value and results.

Softec Solutions is currently seeking a Role-Based Analyst (RBAC) who will use an existing framework to support a corporate enterprise catalogue of access roles, privileges and constraints, and implementation of the new design into selected application configurations. The candidate will use a “Top Down” approach to design and build an enterprise catalogue of roles and policies that can be applied to any application, individual, system and location. Initial naming and governance processes will be provided for on-going management of the system.

Essential Functions:

Work with business and solution owners to identify and maintain user role definitions

Participate in discussions on new technologies and tools related to RBAC/Entitlements/IAM

Work with various internal business groups and IT application owners in order to define Role-based access templates for implementing Role Based Access Controls (RBAC) for multiple applications.

Build partnerships with business units to ensure that business requirements continually adhere to Role Based Access Control program standards

Assist in collaborating with various stakeholders to ensure effective communication and coordination across the enterprise related to identity and entitlement management policies, procedures, and standards.

Assist in documenting and maintaining effective internal RBAC control processes and procedures in accordance with company standards

Assist with the development and presentation of IAM training documentation.

Qualifications:

Identity & Access Management experience: 3 years+

RBAC life cycle management experience: 3 years+

Experience in, and understanding of core IT security principals and technologies including policy design and implementation, least privilege, separation of duties, and data protection

Working with stakeholders to understand their access needs and designing access roles accordingly

Experience with analyzing and documenting business requirements and interfacing with system/platform owners

Managing RBAC process lifecycle

Knowledge of at least one or more if the following technologies: JIRA, Confluence, AGILE, RBAC methodology.

Proven ability to translate business and client security needs into access policy controls to mitigate risk.

Define roles & resource group for standardization as per application security standards.

Review active privileges in the system & conclude on creation/modification of roles.

Effectively communicating requirements to stakeholders, managing conflicts, issues and changes in order to ensure that stakeholders and project team members remain in agreement on solution scope.

Business analysis planning and monitoring to determine which activities are necessary in order to identify relevant stakeholders, select appropriate techniques and processes to manage requirements and provide constant assessment of progress

Ability to understand business challenges and translate functional business roles into technical RBAC roles.

Working knowledge of HIPAA and how the Security Rule applies is desirable.